Re: [sqlmap-users] SSL issue?
Brought to you by:
inquisb
Menu
▾
▴
Re: [sqlmap-users] SSL issue?
|
From: Miroslav S. <mir...@gm...> - 2012-10-13 07:42:56
|
Hi Geoff. Please try to connect with the openssl from the command line: openssl s_client www.site.com:443 Python SSL module uses OpenSSL bindings for connecting, so if it goes well, then something other could be a problem here. In that case sending us privately a site's url (you can strip all parameter values) could help us a lot in debugging this issue. Kind regards, Miroslav Stampar On Thu, Oct 11, 2012 at 5:48 PM, Geoff Jones <no...@0x...> wrote: > Hi, > > I'm having an issue connecting to one particular SSL enabled site. The > error being received is not related to SSL, though I have confirmed it is > not a UA/status code issue as the error suggests (tested via a connection > with curl - and it also works if going through a proxy): > > *[16:38:03] [CRITICAL] connection dropped or unknown HTTP status code > received. Try to force the HTTP User-Agent header with option > '--user-agent' or switch '--random-agent'. sqlmap is going to retry the > request* > > The only difference I can see between the sites, is the SSL ciphers that > they support. The supported ciphers are listed below (site2 is the one > causing problems - sqlmap works against site1): > > sslscan site1.local | grep -i accept > > Accepted SSLv3 128 bits AES128-SHA > Accepted SSLv3 128 bits RC4-SHA > Accepted SSLv3 128 bits RC4-MD5 > Accepted TLSv1 128 bits AES128-SHA > Accepted TLSv1 128 bits RC4-SHA > Accepted TLSv1 128 bits RC4-MD5 > sslscan site2.local | grep -i accept > Accepted SSLv3 168 bits EDH-RSA-DES-CBC3-SHA > Accepted SSLv3 168 bits DES-CBC3-SHA > Accepted SSLv3 128 bits RC4-SHA > Accepted TLSv1 256 bits AES256-SHA > Accepted TLSv1 168 bits EDH-RSA-DES-CBC3-SHA > Accepted TLSv1 168 bits DES-CBC3-SHA > Accepted TLSv1 128 bits RC4-SHA > > I have no idea where to start debugging this issue. Is it a Python issue, > an OpenSSL issue, sqlmap, or something else? > > Running Gentoo with Python 2.7 (have tried 2.6), and openssl-1.0.0j. I > very much suspect this is a problem with my build, though any pointers > would be most appreciated. > > Regards, > > Geoff > > > ------------------------------------------------------------------------------ > Don't let slow site performance ruin your business. Deploy New Relic APM > Deploy New Relic app performance management and know exactly > what is happening inside your Ruby, Python, PHP, Java, and .NET app > Try New Relic at no cost today and get our sweet Data Nerd shirt too! > http://p.sf.net/sfu/newrelic-dev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm |
